CVE-2020-10693

🗓️ 06 May 2020 14:10:15Reported by Debian Security Bug TrackerType

debiancve🔗 security-tracker.debian.org👁 29 Views

A flaw in Hibernate Validator allows evaluation of invalid EL expressions, bypassing input sanitation control

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 67
CVE	CVE-2020-10693	6 May 202014:15	–	cve
IBM Security Bulletins	Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-10693)	20 Jan 202109:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Transformation Advisor is affected by a vulnerability in WebSphere Application Server Liberty (CVE-2020-10693)	11 Dec 202015:53	–	ibm
IBM Security Bulletins	Security Bulletin: Websphere Hibernate Validator Vulnerability Affects IBM Control Center (CVE-2020-10693)	15 Jan 202122:29	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in WebSphere Application Server Liberty affects IBM Z Development and Test Environment - Jan 2021	29 Jan 202114:27	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Hibernate Validator may affect IBM WebSphere Application Server Liberty shipped with IBM Digital Business Automation Workflow family products (CVE-2020-10693)	14 Sep 202215:28	–	ibm
IBM Security Bulletins	Security Bulletin: Novalink is impacted by Vulnerability in Hibernate Validator affects WebSphere Application Server Liberty (CVE-2020-10693)	9 Nov 202010:03	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Hibernate Validator affects Liberty for Java for IBM Cloud (CVE-2020-10693)	7 Oct 202216:01	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Asset Analyzer is affected by a vulnerability in WebSphere Application Server Liberty (CVE-2020-10693)	23 Mar 202122:22	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Hibernate Validator affects WebSphere Application Server Liberty (CVE-2020-10693)	14 Oct 202022:42	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Debian	12	all	libhibernate-validator-java	5.3.6-2	libhibernate-validator-java_5.3.6-2_all.deb
Debian	11	all	libhibernate-validator-java	5.3.6-1	libhibernate-validator-java_5.3.6-1_all.deb
Debian	999	all	libhibernate-validator-java	5.3.6-3	libhibernate-validator-java_5.3.6-3_all.deb
Debian	13	all	libhibernate-validator-java	5.3.6-3	libhibernate-validator-java_5.3.6-3_all.deb
Debian	12	all	libhibernate-validator4-java	4.3.4-7	libhibernate-validator4-java_4.3.4-7_all.deb
Debian	11	all	libhibernate-validator4-java	4.3.4-4	libhibernate-validator4-java_4.3.4-4_all.deb
Debian	999	all	libhibernate-validator4-java	4.3.4-7	libhibernate-validator4-java_4.3.4-7_all.deb
Debian	13	all	libhibernate-validator4-java	4.3.4-7	libhibernate-validator4-java_4.3.4-7_all.deb

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 May 2020 14:15Current

6.8Medium risk

Vulners AI Score6.8

CVSS25

CVSS35.3

EPSS0.00036